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TECHNICMj field 

Embodiments of the present invention relate to the field 
of digital computer systems. More particularly, embodiments of 
the present invention relate generally to the employment of a 
digital secret that is unique to a secure hardware environment 
for performing cryptography. 



RACKGROUND ART 

The use of digital computer systems in electronic 
communications and information processing systems for 
information control and information retrieval has rapidly 

15 proliferated in modern business environments. Preservation of 
sensitive information under a security implementation utilized 
by the conventional digital computer systems can be compromised 
due to unfettered access to the processors and memory of each 
of the conventional digital computer systems. Thus, it would 

20 be advantageous to provide a solution that can provide a secure 
environment to perform cryptography on sensitive information. 
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nT QfT.DSITRE ™ THE TNVF.NTION 

Embodiments of the present invention provide a system 
that provides a secure environment for employing a key-based 
cryptographic process using a hardware specific secret 
5 identifier. 
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rrtf.F nF.SCRT PTTON OF THF, DRAWINGS, 

The accompanying drawings, which are incorporated in and . 
form a part of. this specification, illustrate embodiments of 
the invention and, together with the description, serve to 
explain the principles of the invention: 

Figure 1 is a diagram illustrating a secure environment 
in which to store a secure identifier, in accordance with one 
embodiment of the present invention. 

Figure 2 is a block diagram illustrating a processor 
environment with secure cryptography capabilities using a 
secure hardware specific digital secret, in accordance with 
one embodiment of the present invention. 

Figure 3 is a flow diagram illustrating the cryptography 
process in a processor environment with secure cryptography 
capabilities including separate cryptographic functional 
blocks communicating through an internal bus, in accordance 
with one embodiment of the present invention. 

Figure 4 is a diagram illustrating the cryptography 
process in a processor environment with secure cryptographic 
capabilities including an integrated cryptographic functional 
5 block, in accordance with one embodiment of the present 
invention. 



TRAN-162/ACM/LCH 



3 



Figure 5 is a diagram illustrating a plurality of 
fusible links that comprise a secure hardware specific 
digital secret, in accordance with one embodiment of the 
present invention. 

Figure 6 is a diagram illustrating components taken fro, 
. chip manufacturing process used for generating a random 
number for use as a secure hardware specific digital secret, 
in accordance with one embodiment of the present invention. 
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PP qt Mnn r.S F0 ° ^pbytmr OUT THE INVENTION. 

Reference will now be made in detail to the preferred . 
embodiments of the present invention, a system for a 
processor with secure cryptographic capabilities using a 
5 hardware specific digital secret, examples of which are 
illustrated in the accompanying drawings . While the 
invention will be described in conjunction with the preferred 
embodiments, it will be understood that they are not intended 
to limit the invention to these embodiments. On the 
10 contrary, the invention is intended to cover alternatives, 
modifications and equivalents, which may be included within 
the spirit and scope of the invention as defined by the 
appended claims. 



15 



Furthermore, in the following detailed description of 
the present invention, numerous specific details are set 
forth in order to provide a thorough understanding of the 
present invention. However, it will be recognized by one of 
ordinary skill in the art that the present invention may be 
20 practiced without these specific details. In other 

instances, well known methods, procedures, components, and 
circuits have not been described in detail as not to 
unnecessarily obscure aspects of the present invention. 



25 



Some portions of the detailed descriptions which follow 
are presented in terms of procedures, steps, logic blocks, 
processing, and other symbolic representations of operations 
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on data bits that can be performed on computer memory. These 
descriptions and representations are the means used by those 
skilled in the data processing arts to most effectively 
convey the substance of their work to others skilled in the 
5 art. A procedure, computer executed step, logic block, 
process, etc., is here, and generally, conceived to be a 
self-consistent sequence of steps or instructions leading to 
a desired result. The steps are those requiring physical 
manipulations of physical quantities. Usually, though not 
10 necessarily, these quantities take the form of electrical or 
magnetic signals capable of being stored, transferred, 
combined, compared, and otherwise manipulated in a computer 
system. It has proven convenient at times, principally for 
reasons of common usage, to refer to these signals as bits, 
15 values, elements, symbols, characters, terms, numbers, or the 
like. 

It should be borne in mind, however, that all of these 
and similar terms are to be associated with the appropriate 
20 physical quantities and are merely convenient labels applied 
to these quantities. Unless specifically stated otherwise as 
apparent from the following discussions, it is appreciated 
that throughout the present invention, discussions utilizing 
terms such as "storing," "creating," "protecting," "setting," 
25 or the like, refer to the action and processes of a computer 
system, or similar electronic computing device, including an 
embedded system, that manipulates and transforms data 
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represented as physical (electronic) quantities within the 
computer system's registers and memories into other data 
similarly represented as physical quantities within the 
computer system memories or registers or other such 
information storage, transmission or display devices. 

Accordingly, embodiments of the present invention 
provide a system for the creation of a processor environment 
within which secure cryptography is performed using an 
internally stored hardware specific digital secret. 
Embodiments of the present invention and their benefits are 
further described below. 

Referring now to Figure 1, a diagram illustrating a 
15 general purpose processing environment 100 with secure 

cryptographic capabilities using a hardware specific digital 
secret is shown in Figure 1, in accordance with one 
embodiment of the present invention. The processing 
environment 100 comprises a security barrier 110 that 
encloses a secure software environment 120 and a secure 
hardware environment 130. That is, the processing 
environment, and more particularly, the secure hardware 
environment 130, is secure from outside encroachment. The 
secure software environment 120 is coupled to the secure 
25 hardware environment 130. 



20 
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The secure hardware environment 130 provides for core 
processing functionality that is hard coded onto an 
integrated circuit (IC) chip. The core processing 
functionality by itself does not provide complete processing 
functionality; however, in combination, both the secure 
hardware environment 130 and the secure software environment 
120 provide for complete processing functionality in a 
processing environment. As such, the software environment 
provides its own processing functionality that may or may not 
be duplicated by the secure hardware environment 130. In 
addition the secure software environment 120 provides an 
interface for providing restricted remote access to the 
secure hardware environment 130. 

The combination of the hardware environment and the 
software environment provide for flexible processing 
capabilities. In one implementation, the hardware 
environment and supporting software environment can be 
configured to implement any processor functionality. For 
example, in one embodiment, the processor environment is 
substantially similar to an x86 central processing unit 
(CPU), or its derivatives. In this way, applications, legacy 
or otherwise, that are supported by the x86 CPU can be 
supported by the processing environment created by the 
combination of the secure hardware environment 130 and the 
secure software environment' 120. Other embodiments are well 
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suited to implementing other CPU processor functionalities 
other than provided by the x8 6 processor. 

Because of the interrelationship of the secure software 
5 environment 120 and the secure hardware environment 130, 
modifications to the processing environment can be quickly 
implemented in the software environment without any 
modification to the hardware environment. As such, bugs or 
errors in the processing environment can be quickly resolved 
10 and repaired. Additionally, updated and new features to the 
processing environment can be quickly added by making the 
necessary modification to the software environment. 

In addition, the secure hardware environment is only 
15 accessible through the secure software environment. The 
secure software environment provides for executable 
instructions, which are sent to the secure hardware 
environment for processing. Because the secure software 
environment provides for a filtering function, remote access 
20 to the secure hardware environment 130 can be partially 

restricted, or fully restricted. In the present embodiment, 
remote access to the hardware environment that is direct is 
fully restricted by the software environment 120. As such, 
all access to the secure hardware environment 130 must go 
25 through the secure software environment 120. 
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Additionally, the secure software environment is 
configured to provide additional security against remote 
access. The secure environment 100 is created because the 
secure software environment 120 creates a security barrier 
110 to restrict remote access. into the secure software 
environment. Correspondingly, remote access is restricted 
into the secure hardware environment 120. 

Referring now to Figure 2, a block diagram is shown 
illustrating a processor 200 with secure cryptographic 
capabilities, in accordance with one embodiment of the 
present invention. That is, the processor 200 is enhanced 
with secure cryptographic capabilities. 

The enhanced processor 200 comprises a self contained 
device 210 that provides cryptographic capabilities 
internally for the enhanced processor 200. The enhanced 
processor 200 comprises an encryption/decryption unit 220, or 
cryptography engine 220, a secret key 230 or digital secret 

230, and internal memory 240. In one embodiment a 

cryptography device 210 within the processor 200 provides the 
' cryptographic capabilities by incorporating the 

functionalities of the cryptography engine 220, the secret 

key 230 and the internal memory 240. 

The cryptography engine 220 performs a key-based 
cryptographic process on data within the processor 200. In 
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one embodiment, the key-based cryptographic process comprises 
a key-based encryption process, and in another embodiment, 
the key-based cryptographic process comprises a key-based 
decryption process. 

5 

In one embodiment, the cryptography engine 220 
implements a cryptography mechanism that comprises the 
Federal Data Encryption Standard (DES) that specifies a 
cryptographic process that is used for the cryptographic 
10 protection of digital data. 

While embodiments of the present invention are disclosed 
using the DES cryptography mechanism, other embodiments are 
well suited to using any cryptography mechanism, such as, the 
15 Triple Data Encryption Algorithm (TDEA or Triple DES) , the 
Advanced Encryption Standard (MS),. etc. These various 
standards define the mathematical steps required to transform 
data into a cryptographic cipher, and also to transform the 
cipher back to its original form. 

20 

The secret key 230 comprises a hardware specific digital 
secret that is used in the key-based cryptographic process 
implemented by the cryptography engine 220. The secret key 
230 is coupled to the cryptography engine 220. The secret 
25 key 230 is internally accessible only within the processor 

200. That is, the secret key is securely confined within the 
processor 200. More specifically, in one embodiment, the 
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secret key 230 is internally accessible by the cryptography 
engine 220. 

The internal memory 240 supports the key-based 

. . nroceS s The internal memory is coupled to the 
5 cryptographic process. me 

cryptography engine 220. Tor instance, the internal memory 
stores data created and used in the cryptographic process, 
and microcode for coordinating the cryptographic process 
within the device 210 of the processor 200. For security 
10 purposes, in one embodiment, the internal memory is dedicated 
to the device 210 for cryptography purposes. As such, 
intermediate data created in the cryptographic process is not 
exposed outside of the device 210, and the .processor 200. 



5 For example, the internal memory 240 comprises a 

register file or memory array within the processor 200. The 
internal memory is devoted to the task of storing 
intermediate results for the purpose of completing the 
cryptography process. 

>0 

The size of the private data array of the internal 
„ 240 is reguired to be at least as large as the block 
size associated with the cipher block of data, in one 
e^odiment of the present invention. As such, the internal 
2 5 memory also includes a minimum of sufficient space to 
accommodate any data or information used to propagate 
information from earlier block encryptions and later block 
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encryptions in order to support the targeted oipher m ode rn 
use in this way, during the encryption of rmultiple blocks 
0 £ data, the processor 200 need not expose intermediate 
results outside o£ the processor 200 by storing data 
5 externally to the processor 200. 

The device 210 combines the cryptography engine 220, the 
secret key 230, and the internal memory 240 completely within 
the processor 200 to take a suitably sized plain-text object, 
10 encrypt it into cipher-text using the encryption hardware of 
the device 210. The encryption engine 220 uses the processor 
specific secret key 230 in the key-based cryptography process 
implemented by the cryptography engine 220. As shown in 
rigure 2, plain text is provided as an input into the device 
15 210, and encrypted text is produced as an output from the 
device 210. The device 210 operates in such a way that no 
intermediate result passes outside the hardware of the device 
210 and the processor 200. 

20 Parallel functionality to decrypt the cipher text back 

to plain text is also provided using the cryptography engine 
220 in conjunction with the secret key 230. This is 
necessary since it is frequently desirable to discard the 
plain text once it has been encrypted. 

A significant benefit of enfcodiments of the present 
invention is that the device 210 is self-contained in a 
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single processor chip, and does not require additional 
peripheral devices. As a result, snooping devices used to 
connect to the processor 200 via one or more external buses 
250 are blocked from discovering the secret key 230 during 
5 the cryptography process. 

■ Figure 3 is a data flow diagram illustrating the 
cryptographic process in a processor 300 with secure 
cryptographic capabilities, in accordance with one embodiment 
10 of the present invention. In the processor 300, the 

cryptographic capability is performed by multiple components 
that are interconnected with an internal bus 315. The bus 
315 is internal to the processor 300 and does not expose 
communication outside of the processor 300. That is, the 
15 internal bus facilitates secure communication, between the 
components within the processor 300. 

in one embodiment, the processor 300 is a very long 
instruction word (VIM) processor that comprises a decoder 
20 350. The decoder 350 generally decodes coded data back to 
its original form, or to a form supported by the functional- 
blocks in the VLIW processor. For example, the functional 
blocks in the processor 300 include the cryptographic engine 
320 ("crypto" engine 320), the arithmetic logic unit (ALU) 
25 370, the memory unit 380, and other functional units 390. 
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The processor 300 also comprises an internal memory 340 
that supports the cryptographic process performed by the 
cryptography engine 320. The internal memory 340 comprises a 
data block 345, and a microcode block 347. The data block 
5 345 comprises data that is used in the cryptographic process. 
For example, the data block 435 may contain the original 
plain text data upon which cryptography is to be performed, 
in addition, the data block 435 may contain intermediate 
results created in the cryptographic process implemented by 

Ton m this wav, the intermediate 
10 the cryptography engine 320. In this way, 

results are not exposed outside the processor 300 via the 
external buses 360. 

The microcode block 347 contains the instructions needed 
15 to coordinate the cryptographic process implemented 

throughout the processor 300. For instance, the microcode 
block 347 contains the step-by-step instructions needed to 
take the plain text in the data block 345, send it to the 
decoder 350 so that the crypto engine 320 can receive the 
20 plain text and perform an encryption process, and then output 
cipher text which is stored in the register 310. While the . 
present embodiment is of a processor that makes extensive use 
of microcode, the equivalent functionality can be implemented 
in other embodiments in other processor architectures using 
25 dedicated transistors. 
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A secret key 330 is stored within the register memory 
310. The secret key 330 as described previously, is a 
hardware specific secure identifier that is used in the key- 
based encryption process implemented by the cryptography 
engine 320. 

Figure 4 is a data flow diagram illustrating the 
cryptographic process in a processor 400 with secure 
cryptographic capabilities, in accordance with one embodiment 
of the present invention. In the processor 400, the 
cryptographic capability is performed within a single 
functional block 430. 

The processor 400 comprises a secure hardware 
environment 410 providing core processing functionality. In 
addition, the processor 400 comprises a secure software 
environment 420 that is coupled to the secure hardware . 
environment 410. The secure software environment 420 
generates executable instructions that are sent to the secure 
hardware environment 410 for processing. As a result, the 
secure hardware environment 410 in combination with the 
secure software environment 420 provides processor 
capability. In addition, the secure hardware environment 410 
is accessible only through the secure software environment 
, 420. in one embodiment, the processor 400 is a general 
purpose central processing unit (CPU) which performs the 
equivalent functionality of an x86 CPU. 
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The secure hardware environment 400 comprises a memory 
register 440, a decoder 450, and plurality of functional 
units. For example, the functional units comprise the ALU 

5 460 unit, the cryptography unit 430, and other functional 

units 470. The memory register 440 supports the cryptography 
process. In one embodiment, by storing data in the register 
440 and providing the proper instruction, the cryptography 
process is initiated through the hardware environment 410 via 

10 the cryptography unit. 

The cryptography unit 430 comprises a functional unit 
within the processor for securely executing a key-based 
cryptographic process autonomously within the cryptography 
15 unit, and internally within the processor 410. The 

cryptography unit 430 comprises a cryptography engine 432, a 
secret key 435, or digital secret 435, and a block state 
memory 437. 

20 In the present embodiment, a full hardware DES 

encryption engine is capable of performing triple DES in a 
number of modes (ECB, CBC, etc.) on data held within the 
processor 400 itself or on data captured within the processor 
400. While the present embodiment implements triple DES 

25 cryptography mechanism, other embodiments are well suited to 
using other cryptography mechanisms, such as, AES. 
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The secret key 435 is unique to the processor 400, and 
is permanently and physically manifested within the secure 
hardware environment 410, and more specifically, within the 
cryptography unit 430. As stated previously with regards to 
Figure 3, the secret key 430 is used in the key-based 
cryptographic process implemented within the cryptography 
engine 432. In addition, the secret key 430 is only 
accessible by the cryptography engine 432 within the 
cryptography unit 430. 

in addition, the cryptography unit 430 comprises a block 
state memory 437 that is coupled to the cryptography engine 
432. The block state memory 437 is used for state tracking 
in the cryptography process implemented within the 
cryptography unit 430. 

The cryptography unit 430 comprises a fully integrated 
circuit within the secure hardware environment 410. As such, 
the device implementing the cryptography process is in 
software-impermeable silicon; the cryptography unit. In this 
way, communication within the cryptography unit 430 is 
performed without the use of an obvious bus, and is less 
prone to attacks via bus snooping and, significantly, immune 
from attack via malicious modification of the microcode 
loaded into the CPU. For instance, the digital secret 435 
and the block state memory 437 (internal memory) are fully 
integrated with the cryptography engine 432 within the 
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cryptography unit 430. As such, the digital secret 435, 
internal memory 437, and cryptography engine 432 are 
hardwired together as one functional unit to facilitate 
communication without requiring a bus. As such, in an 
cryptography instruction, the cryptography engine 432 can use 
its own secret key 435, or another key that is provided. 

in the present embodiment, a secret key 435 is stored in 
the secure hardware environment 410. More particularly, the 
secret key 435 comprises a comprises a digital secret that is 
unique identifier of the processor 400. As such, no two 
similarly configured secure hardware environments can have 
the same secret key 435. 

The present embodiment uses the secret key 435 to prime 
the cryptography engine 432 without referencing code or data 
outside the cryptography unit 430. As a result, this 
eliminates the possibility of external bus-snooping attacks 
on the secret key 435 each time it is used, and is not , 
susceptible to a malicious microcode attack. 

In one embodiment, the secret key 435 is permanently and 
physically manifested in the secure hardware environment 410. 
Additionally, the secret key is known and used only within 
the confines of the cryptography unit 430. In other words, 
the secret key 435 cannot be transferred through any 
communication bus outside of cryptography unit 430. 
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in one embodiment, the secret key 435 is a random 
number. Generation of the random number can be through any 
m eans. In one embodiment, generation of the random number is 
5 associated with the manufacturing process of the processor 
die (IC chip) containing the secure hardware environment 410, 
as will be further described more fully later. 

Figure 5 is a diagram illustrating the plurality of. 

10 fusible links 500 that comprises the random number of the 
secret key (e.g., secret key 435), in accordance with one 
embodiment of the present invention. The random number is 
manifested within the secure hardware environment 410 through 
a plurality of fusible links 500 coupled to and contained 

15 within the secure hardware environment 410. 

The logic of the secret key as implemented, within the 
plurality of fusible links 500 is not externally scannable. 
Also, the secret key is not visible in an direct way to an 
20 x86 program running on the processor, for example. That is, 
the secret key never is exposed outside the processor 
containing the secret key. 

By way of example, the random number is manifested by 
25 permanently setting a binary state in each of the plurality 
of fusible links 500. As such, each of the plurality of 
fusible links 500 stores one bit of information. Taken as a 
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wh ole, the states of each of the plurality of fusible links 
comprise the random number of the secret key. In exemplary 
Figure 5, the plurality of fusible links is comprised of the 
following fusible links: 510,. 520, 530, 540, 550, etc. As 
5 such, the plurality of fusible links represents a binary 

f ^ .Prret key. To illustrate, the random 
representation of the secret Key. 

c ^ 0 iinni as represented in a binary 

number in Figure 5 is 11001..., as my 

numbering system. 

0 The secret key is a random number of sufficient length 

to avoid discovery by brute-force attack. In one embodiment 
the random number comprises 128 bits. As such, the plurality 
of fusible links 500 comprises 128 fusible links to comprise 
the random number of the secret key. While the present 

15 embodiment presents the secret key that comprises 128 bits, 
other embodiments are well suited to random numbers 
comprising more than 128 bits, or less than 128 bits. 

The binary states in the plurality of fusible links are 
20 established by completing a circuit path through the fusible 
link or destroying a circuit path through the fusible link. 
Fusible link 510 illustrates the completion of a circuit 
path, in one implementation, a fusible link that completes a 
circuit path through the fusible link as coupled to other 
25 circuit elements creates a logic high level (1). 

correspondingly, a fusible link that does not complete a 
circuit path through the fusible link as coupled to other 
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circuit elements creates a logic low level. As such, fusible' 
link 510 is a logic high. In addition, fusible link 520 and 
fusible link 550 are also logic highs. Correspondingly, 
fusible link 530 and fusible link 540 are logic low levels 
(0), as the circuit path through those links are broken. 

in one embodiment, each of the states contained within 
the plurality of fusible links 500 is read through a scan 
chain implementation. As such, the random number as 
represented by the states of the plurality of fusible links 
can be utilized by the cryptography unit implementing the 
cryptography capabilities of a processor. 

Although the present embodiment discloses the permanent 
storage of the random number representing the secret key 
through a plurality of fusible links, other embodiments are 
well suited to other means for permanently storing the random 
number within the secure hardware environment that contains 
the secret key. 

Although the present embodiment discloses accessing the 
random number that is permanently stored in the plurality of 
fusible links 500 through a scan chain, other embodiments are 
well suited to accessing the random number through other 
means, such as, internal registers. 



TRAN-162/ACM/LCH 



22 



In one en*odiment, the random number used for the secret 
ke y is generated from testing data created during the chip . 
^factoring process to discover a naturally occurring 
random nu*er. The random number and the testing data are 
5 unigue to the specific die containing the secure hardware 
environment and the wafer that includes the specific die, rn 
accordance with one embodiment of the present invention. 

By using chip manufacturing testing data, the present 
10 embodiment is able to generate a random number that is 

specific to a particular die during its fabrication. As a 
result, the random number can also naturally be physically 
manifested within or enfcedded into the die during the 
fabrication process. For example, the random nunfcer can be 
15 created by engaging or disengaging links in a plurality o£ 

fusible links located within the secure hardware environment, 
as described previously in full, in conjunction with 
performing repair to the specific die. 

20 Figure 6 is a diagram illustrating the components of 

testing data for a silicon wafer generated during 
fabrication, in accordance with the present embodiment. In 
Figure 6, a silicon wafer 600 is shown from which a plurality 
of dice or chips are created during a fabrication process. 
25 in the silicon wafer 600, each of the darkened blocks 
represents a single die that after fabrication can be 
partitioned out and used as a hardware processing unit. 
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To the left of dotted line 650 is shown the fabrication 
of the plurality of dice in the silicon wafer 600. To the 
right of dotted line 650 is shown the testing process for the 
silicon wafer 600 and for each of the plurality of dice 
located on the silicon wafer 600. 

During the testing process, various tests are 
implemented to determine the performance characteristics of 
each of the plurality of dice on the silicon wafer 500. In 
its most simplest categorization, the testing process may 
categorize each of the plurality of dice into three 
categories: acceptable (darkened), unacceptable (X), and 
repairable (R) . 

Specifically, to the right of line 650, the silicon 
wafer 600 undergoes the testing process. After the silicon 
wafer 600 is tested, a resulting test pattern 605 for the 
silicon wafer 600 is generated. In the test pattern 605, a 
darkened block illustrates a die that fits within the 
acceptable category. In the test pattern 605, a block with 
an "X" illustrates a die that fits within the unacceptable 
category. Also, in the test pattern 605, a block with an "R" 
illustrates a die that fits within the repairable category. 
The letter designations "X" and "R, " as well as the darkened 
block are for illustration purposes only. 
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During the testing process, data concerning the wafer is 
acquired which includes wafer data 610 that is generated for 
the silicon wafer 600 in general and data specific to each 
die present on the wafer. This wafer data 610 can include 
information regarding the pattern of dice that fit within the 
acceptable, unacceptable, and repairable categories. For 
example, due to the chemical interactions of the silicon 
wafer 600 during the fabrication process, clusters of dice 
fitting within a particular category may predominate. As 
shown in Figure 6, groups of unacceptable dice marked with an 
"X" may be clustered together. Similarly, groups of 
repairable dice marked with an "R" may be clustered together. 

As such, the wafer data 610 for the silicon wafer 600 
can indicate the pattern of acceptable, unacceptable, and 
repairable dice located on the silicon wafer 600. The wafer 
data also includes detailed test-vector results for each 
independent die, which can be used to help determine the 
quality of the die and the manner in which any needed repair 
of that die may be performed. The wafer data 610 can be 
stored in a file. Due to the random nature of the 
fabrication process, the contents of the file containing the 
wafer data 610 is unique to the silicon wafer 600. The wafer 
data 610 is a unique, and naturally occurring random number 
for the silicon wafer 600. In fact, for each silicon wafer 
that undergoes fabrication, a file containing corresponding 
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wafer data can be generated that is unique to that silicon 



wafer. 



A hash or message digest of the wafer data 610 can be 
5 created using any suitable, cryptographically strong, hash 
algorithm. For example, SHA-1 or MD5. For purposes of this 
Specification, the symbol "XXX" can represent the message 
digest of wafer data corresponding to a particular wafer, 
computed with the selected hash algorithm, H() . By way of 
10 illustration the message digest of wafer data 610 

corresponding to silicon wafer 600 can be represented by the 
symbol XXX 610 = H(data 610). Without access to the wafer data 
file, it is Unpractically hard to guess the numerical value 
of XXX 610 . Thus, it will be recognized that XXX 610 can be 
15 considered a secret unique to the wafer 600. 

For a particular die on the silicon wafer 600, the die- 
specific data includes x and y coordinates to indicate the 
location of the particular die on the wafer and also includes 

20 repair information for that particular die. As an example, , 
die 620 fits within the repairable category. As a result, 
the die data 625 for the die 620 will include the x and y 
coordinates for the die 620 as well as repair information for 
the die 620. This die data 625 is a subcomponent of the 

25 wafer data 610. 
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For each of the plurality of dice in the silicon wafer 
600, a corresponding die data can be created that is unique. 
Uniqueness is preserved because the x and y coordinates are 
different for each of the plurality of dice, even though 
5 repair information may be the same, such as, in the case when 
multiple dice have no repair information. 

A hash or message digest of the die data 625 can be 
created using any suitable hash algorithm H(), as described 

10 previously. For purposes of this Specification, the symbol 
"YYY" can represent the message digest of the die data for a 
particular die. By way of illustration, the message digest 
of the die data 625 for die 620 is represented by the symbol 
YYY 62 5 =H(data 625). The uniqueness and not the secrecy of 

15 YYY is all that is required of this computed value. 



For each of the plurality of dice in the silicon wafer 
600, an HMAC algorithm keyed with the wafer secret (XXX) can 
be used to convert the die-unique hash (YYY) into a secret 
for that die, in one embodiment. The secret for a die will 
be represented by the symbol K„. That is, in Equation 1: 
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K D = HMAC X xx(YYY) 

= H (XXX I H (XXX I YYY | padding) Ipadding) . (D 

The padding characters are included to align 
intermediate data to the block size of the selected hash 
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algorithm. By way of illustration, the random number for die 
620, represented as K 620 , is created as follows in Equations 2 



and 3: 



r 620 = H(XXX 610 |YYY 625 lpadding) ; and (2) 
K 620 = H(XXX 610 |R62olpadding) . < 3 ) 

Here, an intermediate result R 520 is introduced, which is 
helpful only in clarifying the steps needed to compute the 
result, K 620 . 

Embodiments of the present invention can be implemented 
partly on software running on a computer system. The 
computer system can be a personal computer, notebook 
computer, server computer, mainframe, networked computer, 
handheld computer, personal digital assistant, workstation, 
and the like. This software program is operable for 
manipulating a hardware specific digital secret for 
cryptography purposes. In one embodiment, the computer 
system includes a processor coupled to a bus and memory 
storage coupled to the bus. The memory storage can be 
volatile or non-volatile and can include removable storage 
media. The computer can also include a display, provision 
for data input and output, etc. 
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The foregoing descriptions of specific embodiments of 
the present invention have been presented for purposes of 
illustration and description. They are not intended to be 
exhaustive or to limit the invention to the precise forms 
disclosed, and obviously many modifications and variations 
are possible in light of the above teaching. The embodiments 
were chosen and described in order to best explain the 
principles of the invention and its practical application, to 
thereby enable others skilled in the art to best utilize the 
invention and various embodiments with various modifications 
as are suited to the particular use contemplated. It is 
intended that the scope of the invention be defined by the 
claims appended hereto and their equivalents. 

Embodiments of the present invention, a system for a 
processor with secure cryptographic capabilities using a 
hardware specific secret identifier, is thus described. 
While the present invention has been described in particular 
embodiments, it should be appreciated that the present 
invention should not be construed as limited by such ■ 
embodiments, but rather construed according to the below 
claims . 
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